angular build: update all non-major dependencies

This PR contains the following updates:

Package	Type	Update	Change
@types/chrome	dependencies	patch	`^0.0.190` -> `^0.0.193`
@types/jquery	devDependencies	patch	`3.5.1` -> `3.5.14`
angular-route (source)	dependencies	patch	`1.8.0` -> `1.8.3`
io_bazel_rules_sass	http_archive	minor	`1.50.0` -> `1.54.1`
jasmine	devDependencies	minor	`~4.2.0` -> `~4.3.0`
jasmine-core	devDependencies	minor	`~4.1.0` -> `~4.3.0`
jasmine-core	devDependencies	minor	`~4.2.0` -> `~4.3.0`
karma	dependencies	minor	`~6.3.0` -> `~6.4.0`
karma	devDependencies	minor	`~6.3.0` -> `~6.4.0`
karma-jasmine	devDependencies	minor	`~5.0.0` -> `~5.1.0`
rollup (source)	dependencies	minor	`~2.75.0` -> `~2.77.0`
safevalues	dependencies	minor	`^0.1.8` -> `^0.3.0`
ts-node (source)	devDependencies	minor	`~10.8.0` -> `~10.9.0`
tsec	devDependencies	patch	`0.2.5` -> `0.2.6`
tsickle	dependencies	minor	`^0.38.0` -> `^0.46.0`

Release Notes

angular/angular.js

`v1.8.3`

Compare Source

One final release of AngularJS in order to update package README files on npm.

`v1.8.2`

Compare Source

Bug Fixes

$sceDelegate: ensure that resourceUrlWhitelist() is identical to trustedResourceUrlList() (e41f01, #17090)

`v1.8.1`

Compare Source

Bug Fixes

$sanitize: do not trigger CSP alert/report in Firefox and Chrome (2fab3d)

Refactorings

SanitizeUriProvider: remove usages of whitelist (76738102)
httpProvider: remove usages of whitelist and blacklist (c953af6b)
sceDelegateProvider: remove usages of whitelist and blacklist (a206e267)

Deprecation Notices

Deprecated ~~$compileProvider.aHrefSanitizationWhitelist~~. It is now aHrefSanitizationTrustedUrlList.
Deprecated ~~$compileProvider.imgSrcSanitizationWhitelist~~. It is now imgSrcSanitizationTrustedUrlList.
Deprecated ~~$httpProvider.xsrfWhitelistedOrigins~~. It is now xsrfTrustedOrigins.
Deprecated ~~$sceDelegateProvider.resourceUrlWhitelist~~. It is now trustedResourceUrlList.
Deprecated ~~$sceDelegateProvider.resourceUrlBlacklist~~. It is now bannedResourceUrlList.

For the purposes of backward compatibility, the previous symbols are aliased to their new symbol.

bazelbuild/rules_sass

`v4.3.0`

Compare Source

Please see the release notes.

jasmine/jasmine

`v4.3.0`

Compare Source

Please see the release notes.

`v4.2.0`

Compare Source

Please see the release notes.

karma-runner/karma

`v6.4.0`

Compare Source

Features

support SRI verification of link tags (dc51a2e)
support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

6.3.15 (2022-02-05)

Bug Fixes

helper: make mkdirIfNotExists helper resilient to concurrent calls (d9dade2), closes /github.com/karma-runner/karma-coverage/issues/434#issuecomment-1017939333

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)
warn when singleRun and autoWatch are false (69cfc76)
security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

6.3.12 (2022-01-24)

Bug Fixes

remove depreciation warning from log4js (41bed33)

6.3.11 (2022-01-13)

Bug Fixes

deps: pin colors package to 1.4.0 due to security vulnerability (a5219c5)

6.3.10 (2022-01-08)

Bug Fixes

logger: create parent folders if they are missing (0d24bd9), closes #3734

6.3.9 (2021-11-16)

Bug Fixes

restartOnFileChange option not restarting the test run (92ffe60), closes #27 #3724

6.3.8 (2021-11-07)

Bug Fixes

reporter: warning if stack trace contains generated code invocation (4f23b14)

6.3.7 (2021-11-01)

Bug Fixes

middleware: replace %X_UA_COMPATIBLE% marker anywhere in the file (f1aeaec), closes #3711

6.3.6 (2021-10-25)

Bug Fixes

bump vulnerable ua-parser-js version (6f2b2ec), closes #3713

6.3.5 (2021-10-20)

Bug Fixes

client: prevent socket.io from hanging due to mocked clocks (#3695) (105da90)

6.3.4 (2021-06-14)

Bug Fixes

bump production dependencies within SemVer ranges (#3682) (36467a8), closes #3680

6.3.3 (2021-06-01)

Bug Fixes

server: clean up vestigial code from proxy (#3640) (f4aeac3), closes /tools.ietf.org/html/std66#section-3

6.3.2 (2021-03-29)

Bug Fixes

fix running tests in IE9 (#3668) (0055bc5), closes /github.com/karma-runner/karma/blob/026fff870913fb6cd2858dd962935dc74c92b725/client/main.js#L14 #3665

6.3.1 (2021-03-24)

Bug Fixes

client: clearContext after complete sent (#3657) (c0962e3)

karma-runner/karma-jasmine

`v5.1.0`

Compare Source

Features

spec-filter: allow custom specFilter (b73dbd6)

5.0.1 (2022-05-13)

Bug Fixes

fixes matches performance issue, github#302 (e964fa6)

rollup/rollup

`v2.77.2`

Compare Source

2022-07-27

Bug Fixes

Avoid a rendering failure when mixing outputs with inlined and non-inlined dynamic imports (#4589)

Pull Requests

#4589: Handle generating non-inlined imports after inlined ones (@lukastaegert)

`v2.77.1`

Compare Source

2022-07-26

Bug Fixes

Ensure IIFE output generates a global variable when generating ES5 (#4588)

Pull Requests

#4577: broken link removed (@Jawad-H)
#4580: Update dependencies (@lukastaegert)
#4584: Documentation clarity and syntax improvements (@berniegp)
#4588: Use var for IIFE (@lukastaegert)

`v2.77.0`

Compare Source

2022-07-15

Features

Introduce maxParallelFileOps to limit both read and write operations, default to 20 and replaces maxParallelFileRead (#4570)

Bug Fixes

Avoid including variables referenced from return statements that are never reached (#4573)

Pull Requests

#4570: Introduce maxParallelFileOps to limit parallel writes (@lukastaegert)
#4572: Document more ways to read package.json in ESM (@berniegp)
#4573: Do not include unused return expressions (@lukastaegert)

`v2.76.0`

Compare Source

2022-07-08

Features

Allow setting a sourcmapBaseUrl for absolute paths in sourcemaps (#4527)

Bug Fixes

Support absolute CLI plugin paths on Windows (#4533)

Pull Requests

#4527: Add sourcemapBaseUrl option (@nickgarlis)
#4533: Add support for absolute plugin paths (@ygoe)
#4538: chore: Included githubactions in the dependabot config (@naveensrinivasan)
#4546: Adapt Node versions on CI to prepare for v3 (@lukastaegert)
#4556: Improve error message for invalid patterns (@DysphoricUnicorn)
#4559: Update dependencies (@lukastaegert)
#4560: Bump peter-evans/create-or-update-comment from 1 to 2 (@dependabot)
#4561: Bump peter-evans/find-comment from 1 to 2 (@dependabot)
#4562: Bump codecov/codecov-action from 1 to 3 (@dependabot)

TypeStrong/ts-node

`v10.9.1`

Compare Source

Fixed

Workaround nodejs bug introduced in 18.6.0 (#1838) @cspotcode
- Only affects projects on node >=18.6.0 using --esm
- Older versions of node and projects without --esm are unaffected

https://github.com/TypeStrong/ts-node/milestone/18?closed=1

`v10.9.0`

Compare Source

Added

--project accepts path to a directory containing a tsconfig.json (#1829, #1830) @cspotcode
- previously it required an explicit filename
Added helpful error message when swc version is too old to support our configuration (#1802) @cspotcode
Added experimentalTsImportSpecifiers option which allows using voluntary .ts file extensions in import specifiers (undocumented except for API docs) (#1815) @cspotcode

Fixed

Fixed bug where child_process.fork() would erroneously execute the parent's entrypoint script, not the intended child script (#1812, #1814) @devversion
Fixed support for jsx modes "react-jsx" and "react-jsxdev" in swc transpiler (#1800, #1802) @cspotcode
Fixed support for import assertions in swc transpiler (#1817, #1802) @cspotcode
Fixed bug where calling repl.evalCode() with code not ending in a newline would not update the typechecker accordingly (#1764, #1824) @cspotcode

https://github.com/TypeStrong/ts-node/milestone/16?closed=1

google/tsec

Configuration

📅 Schedule: Branch creation - "after 10:00pm on monday,before 04:00am on tuesday" in timezone America/Tijuana, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

[ ] If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by Renovate Bot.

Jul 05 '22 05:07 angular-robot

Blocked on the karma-jasmine update and zone.js fix I sent separately..

Jul 13 '22 14:07 devversion

The karma jasmine fix landed, rebasing..

Jul 18 '22 19:07 devversion

Now blocked on a change in rules_nodejs because the external ts_library and internal one have diverged too much. Definitely time to work on alternatives here as the internal one keeps diverging and it's not worth doing... cc. @josephperrott

https://github.com/bazelbuild/rules_nodejs/pull/3508

Note: There has been a similar "partial-sync" in rules_nodejs but it just implemented the tsconfig type definition, but not the corresponding Starlark change 😞 - https://github.com/bazelbuild/rules_nodejs/commit/5afaab8e1ce047b024339169a9073e46543bedad

Jul 25 '22 13:07 devversion

The rules_nodejs change is now available since Sunday: https://github.com/bazelbuild/rules_nodejs/commit/78a05281075c50ee31658bc48dd852e35b973496

Aug 02 '22 08:08 devversion

⚠ Artifact update problem

Renovate failed to update artifacts related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

any of the package files in this branch needs updating, or
the branch becomes conflicted, or
you click the rebase/retry checkbox if found above, or
you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: aio/tools/examples/shared/package.json

Command failed: yarn run sync-deps
error Command "sync-deps" not found.

File name: aio/tools/examples/shared/package.json

Command failed: yarn run sync-deps
error Command "sync-deps" not found.

File name: aio/tools/examples/shared/package.json

Command failed: yarn run sync-deps
error Command "sync-deps" not found.

File name: aio/tools/examples/shared/package.json

Command failed: yarn run sync-deps
error Command "sync-deps" not found.

File name: aio/tools/examples/shared/package.json

Command failed: yarn run sync-deps
error Command "sync-deps" not found.

File name: aio/tools/examples/shared/package.json

Command failed: yarn run sync-deps
error Command "sync-deps" not found.

Aug 03 '22 00:08 angular-robot

Blocked on https://github.com/google/safevalues/pull/190 / cl/465542098

Aug 05 '22 12:08 devversion

This PR was merged into the repository by commit 2548214ba230ae96a21b1fa02faa5f3a64a6536c.

Aug 08 '22 16:08 dylhunn

This issue has been automatically locked due to inactivity. Please file a new issue if you are encountering a similar or related problem.

Read more about our automatic conversation locking policy.

_{This action has been performed automatically by a bot.}

Sep 09 '22 16:09 angular-automatic-lock-bot[bot]